codeql/javascript/change-notes/2021-04-26-unsafe-html-construction.md

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00
lgtm,codescanning
* A new query, `js/html-constructed-from-input`, has been added to the query suite,
  highlighting libraries that may leave clients vulnerable to cross-site-scripting attacks.
	`lgtm,codescanning`
	* A new query, `js/html-constructed-from-input`, has been added to the query suite,
	`highlighting libraries that may leave clients vulnerable to cross-site-scripting attacks.`